Hi everyone! I'm Jim, a cybersecurity professional with 10 years of experience looking to help advise and work with folks in the content creator and VTuber spaces. Mainly focused on preventing doxxing and hacking as well as improving one's personal privacy online.
So the hacker made it so that I'm their child, and I can't move on with the account recovery unless I rhave THEIR password. Lest someone has any ideas, I don't think I'm getting back into my own account๐ซฉ
In case anyone is wondering: there is no risk to any personal information or payment details due to this hack. The only risk is if you copy pasted anything into Windows Run as part of the ClickFix attack. Outside of that your private information is safe.
Found the source of this, somehow within the last 5 days via (most likely) a vulnerable WordPress plugin was injected into the HTML head. Loads some obfuscated code and also leaks IP and useragent to whoever the hell is operating this almontm domain.
Found the source of this, somehow within the last 5 days via (most likely) a vulnerable WordPress plugin was injected into the HTML head. Loads some obfuscated code and also leaks IP and useragent to whoever the hell is operating this almontm domain.
PSA for anyone attending San Japan: it seems their website is compromised with a ClickFix attack. Just had this pop up when browsing on there. Haven't been able to get it to pop back up again but I can confirm it happened. Do not copy paste ANYTHING from a popup like this.
Found the source of this, somehow within the last 5 days via (most likely) a vulnerable WordPress plugin was injected into the HTML head. Loads some obfuscated code and also leaks IP and useragent to whoever the hell is operating this almontm domain.
PSA for anyone attending San Japan: it seems their website is compromised with a ClickFix attack. Just had this pop up when browsing on there. Haven't been able to get it to pop back up again but I can confirm it happened. Do not copy paste ANYTHING from a popup like this.
@Staggiezz 100% a phishing scam, that "Login" button won't even go to Twitch but instead to some other spoofed credential harvesting lookalike site for stealing folks passwords, MFA codes, session replay / token theft etc... all an unfortunately common tactic
Current NewsDrop research shows several VTubers have had their songs included in a recently-discovered dataset by The Atlantic's AI Watchdog. This means that songs from select VTubers are most likely prone to being synthesized into AI-generated tracks. [๐ in ๐ฌ]
Please do not accidentally doxx yourself!
Youtube now has a feature to show who shared you a video when you open up the link!
So if you want to be safe, make sure to turn this setting off ๐ซถ
Uniqso customers are receiving this email that has their personal information included in it. The company claims to be affiliated with them. Nothing is being charged on cards but some people are being spammed with texts as well.
You can also usually disable the "show my profile when sharing links" setting on most apps, but it's best to make a habit of removing tracking anyway. Additionally Some sites like TikTok make this a bit more difficult to do, here's a guide I posted: https://t.co/BfSovvKsTl
TikTok bakes in the tracking link every time you try to share something. This requires an extra step to remove the tracking which I have outlined here! This way you don't accidentally reveal a personal profile when sharing content. (2/3)